$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/2D215B32584111EDBE50107CC4F9AE02.roa File: 2D215B32584111EDBE50107CC4F9AE02.roa (raw, json) Hash identifier: rrOHCLGQIv68ZsqeTx/13ZAeIZvs4cOHhVflXZxAbPw= Subject key identifier: 8B:54:8F:37:9B:C9:EE:9E:C0:45:B1:0D:3D:EF:6D:3A:96:70:34:B0 Certificate issuer: /CN=A91FB8C9/serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Certificate serial: DF Authority key identifier: 25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/2D215B32584111EDBE50107CC4F9AE02.roa Signing time: Fri 29 Dec 2023 04:25:37 +0000 ROA not before: Fri 29 Dec 2023 04:25:37 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 142592 IP address blocks: 103.104.244.0/24 maxlen: 24 2402:20c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB8C9/serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Validity Not Before: Dec 29 04:25:37 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658e4a41-9a1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:73:24:9e:04:40:9b:e1:8b:7e:89:14:e1:3b: 12:0f:8d:60:3d:20:b7:56:34:f5:8e:92:29:66:d1: 7f:7f:14:2c:78:ef:d5:28:3d:cb:2b:78:34:a8:b2: ed:b0:5c:63:d0:a7:2f:cc:60:d8:44:63:eb:6f:33: 0f:bc:eb:ea:13:7c:82:11:5d:ed:0c:92:e6:b4:a6: 19:d3:04:29:6a:e8:63:f6:6e:e7:2c:c2:c1:d4:b0: 27:ec:75:a3:03:a0:44:32:53:cc:dd:3d:b2:7b:16: f3:5a:bf:6d:01:7f:f0:c0:98:67:8d:d7:1b:95:c7: aa:b7:4d:7c:6c:91:69:98:97:3c:52:79:64:e1:72: f1:f7:ac:22:74:5f:7b:74:ae:c7:97:a3:c6:8d:36: 8a:cb:ca:4a:e8:ce:cc:40:c4:c3:75:49:17:2a:19: 7b:dd:c3:b4:b0:53:0f:75:b1:b3:52:d0:0f:14:1a: a8:a0:29:f4:ce:36:96:43:38:1e:16:ed:d8:be:5e: 39:96:bc:20:a0:17:06:ee:a1:2d:16:8d:bc:ee:1f: 9a:89:12:2c:a5:c9:95:ea:cb:af:08:c1:95:8c:38: d5:d5:47:03:a8:41:95:66:96:07:3d:6f:6f:f4:de: 5b:87:04:b6:3f:d4:ca:c4:45:d4:47:3c:48:b4:df: 38:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:54:8F:37:9B:C9:EE:9E:C0:45:B1:0D:3D:EF:6D:3A:96:70:34:B0 X509v3 Authority Key Identifier: keyid:25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/2D215B32584111EDBE50107CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.244.0/24 IPv6: 2402:20c0:1::/48 Signature Algorithm: sha256WithRSAEncryption 23:5f:1c:27:d9:99:87:3d:0f:7d:7a:aa:51:bb:cd:7d:74:ec: ac:98:2c:a4:00:4c:ba:29:ea:2a:1a:bf:d5:54:c2:66:2a:1d: a3:b8:6c:f4:e5:a6:56:06:08:5b:64:2e:2e:87:02:3c:5a:ff: c5:51:6c:fd:1e:f5:08:de:02:81:09:bc:b6:e3:69:69:ba:9f: b0:74:99:a9:e8:8b:f0:33:ec:9a:5d:b8:19:64:26:86:62:fb: b4:be:fa:2e:ba:36:70:6a:13:2c:ce:cb:c5:8a:f3:91:bd:ef: 15:e0:79:a3:3c:40:a6:a0:22:9b:30:fd:26:86:d8:35:92:98: df:48:f5:cd:1d:19:81:a5:2a:7b:5c:c5:b8:68:12:48:35:70: 65:8d:97:df:90:6a:0f:66:73:67:95:e1:2c:82:66:09:a2:11: 16:0c:c3:de:32:b7:e4:64:68:e3:b4:21:47:a6:2d:ee:e0:2f: e1:bb:cb:00:0c:19:dc:ef:4a:43:c1:fa:df:d0:61:b4:21:2b: 30:16:01:96:f4:ed:cf:3e:02:82:c1:96:63:e9:98:85:48:8e: 3d:2f:eb:55:fc:83:bd:58:5b:a6:fb:b4:39:a5:61:61:69:a8: a7:5d:db:76:4d:7c:a7:8b:db:24:87:73:d2:92:21:92:bd:d3: 18:a2:72:5c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI4QzkxMTAvBgNVBAUTKDI1MzgwMEVEMTZFRDBGRjMzN0Y3MDQwRDBFM0RGMTE0 MUMxNjE2MUMwHhcNMjMxMjI5MDQyNTM3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThlNGE0MS05YTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nMkngRAm+GLfokU4TsSD41gPSC3VjT1jpIpZtF/fxQseO/VKD3LK3g0qLLt sFxj0KcvzGDYRGPrbzMPvOvqE3yCEV3tDJLmtKYZ0wQpauhj9m7nLMLB1LAn7HWj A6BEMlPM3T2yexbzWr9tAX/wwJhnjdcblceqt018bJFpmJc8Unlk4XLx96widF97 dK7Hl6PGjTaKy8pK6M7MQMTDdUkXKhl73cO0sFMPdbGzUtAPFBqooCn0zjaWQzge Fu3Yvl45lrwgoBcG7qEtFo287h+aiRIspcmV6suvCMGVjDjV1UcDqEGVZpYHPW9v 9N5bhwS2P9TKxEXURzxItN84CwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFItUjzeb ye6ewEWxDT3vbTqWcDSwMB8GA1UdIwQYMBaAFCU4AO0W7Q/zN/cEDQ498RQcFhYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjhDOS8yMTk3QjA5MjU4 M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERfTTM5d1FORGozeEZCd1dG aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pUZ0E3UmJ0RF9NMzl3UU5EajN4RkJ3V0Zody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkI4QzkvMjE5N0IwOTI1ODNGMTFFRDgxODFFNTdCQzRGOUFFMDIvMkQyMTVCMzI1 ODQxMTFFREJFNTAxMDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnaPQwDwQCAAIwCQMHACQCIMAAATANBgkqhkiG9w0BAQsF AAOCAQEAI18cJ9mZhz0PfXqqUbvNfXTsrJgspABMuinqKhq/1VTCZiodo7hs9OWm VgYIW2QuLocCPFr/xVFs/R71CN4CgQm8tuNpabqfsHSZqeiL8DPsml24GWQmhmL7 tL76Lro2cGoTLM7LxYrzkb3vFeB5ozxApqAimzD9JobYNZKY30j1zR0ZgaUqe1zF uGgSSDVwZY2X35BqD2ZzZ5XhLIJmCaIRFgzD3jK35GRo47QhR6Yt7uAv4bvLAAwZ 3O9KQ8H639BhtCErMBYBlvTtzz4CgsGWY+mYhUiOPS/rVfyDvVhbpvu0OaVhYWmo p13bdk18p4vbJIdz0pIhkr3TGKJyXA== -----END CERTIFICATE-----Generated at Tue May 7 05:40:33 2024 by rpki-client on console-fra.rpki-client.org